JUNE 15, 2005 (COMPUTERWORLD) - A majority of federal agencies appear to be unprepared to deal with emerging information security threats such as spyware, phishing and spam, according to a report released Monday by the U.S. Government Accountability Office (GAO). Adding to the problem is a lack of guidance on what exactly government agencies need to report when it comes to these threats, as well as how and to whom they should report such incidents.
As a result, "the federal government is limited in its ability to identify and respond to emerging cybersecurity threats, including sophisticated and coordinated attacks that target multiple federal entities," the 79-page report warned.
The GAO report is based on input from security executives at 24 major federal agencies and discusses potential threats, reported agency perception to these threats and efforts to address them.
According to the GAO, spam, phishing and spyware all pose potent and growing threats to the integrity of federal information systems. Phishing scams, for instance, can result in identity theft and loss of confidential information, the GAO said, adding that several agencies -- including the FBI and the Internal Revenue Service -- had already fallen victim to phishers...
http://www.computerworld.com/newsletter/0,4902,102489,00.html?nlid=AM